IOC Report

loading gif

Files

File Path
Type
Category
Malicious
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
data
dropped
 malicious
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\03033b57-3219-4cb6-a405-87e9beaa0fe4.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\0b8ab97d-5879-4686-9880-526ab573988f.tmp
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\2b0073b1-5807-4264-8c9e-1c900e70454c.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\451d4c8e-5a9a-4f82-87cf-e1ac29378b76.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\56e0f22d-b405-4aa3-90b3-089bf3c5f3ee.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\6835e90d-d7e2-453f-90d3-14f361eac640.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\790ad575-8a57-44e5-9cc1-d569047a51db.tmp
SysEx File -
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2c2fb85a-589e-4d09-8094-2af8a8c39d00.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\2ca84e29-2424-47e9-8173-3243ba4fcc24.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
modified
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\36aed148-5b30-4603-9080-f80068ee9007.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\46e16939-3fe9-478f-ae86-6f327703e818.tmp
ASCII text, with very long lines, with no line terminators
modified
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\499a3aca-068f-42ae-9425-71f2de597531.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\56a82a77-a534-4d10-8ac1-806274e4060c.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5cf86b70-1ba3-48cf-b420-b69faa14cb27.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5fa6b080-923d-4431-b096-6a7bd9b6b81f.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\60f39ca6-9652-43c2-ac51-ee49f5f424c7.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\63e40563-df2a-494c-8924-9ade90b36b00.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8eb25938-c3d0-4bb2-a950-14cffec06bcf.tmp
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old2 (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_onenote.officeapps.live.com_0.indexeddb.leveldb\000001.dbtmp
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_onenote.officeapps.live.com_0.indexeddb.leveldb\000003.log
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_onenote.officeapps.live.com_0.indexeddb.leveldb\CURRENT (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_onenote.officeapps.live.com_0.indexeddb.leveldb\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\IndexedDB\https_onenote.officeapps.live.com_0.indexeddb.leveldb\MANIFEST-000001
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last SessionKC (copy)
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Action Predictor
SQLite 3.x database, last written using SQLite version 3032001
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State. (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences. (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesMP (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\QuotaManager
SQLite 3.x database, last written using SQLite version 3032001
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
SQLite 3.x database, last written using SQLite version 3032001
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferencesb (copy)
UTF-8 Unicode text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent State.. (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old. (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\c51ddfab-7086-4f24-baa6-abd3e0fc72a9.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.olde/ (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\fc8da55b-4893-484f-84d6-f58bbca0a72c.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\TransportSecurity (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cc4e7317-1bf1-41ed-ab6b-b6c94a7bfb03.tmp
very short file (no magic)
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ccc5d433-8a34-4b8e-8ee7-28bd18886a03.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d564ebf6-92ce-4072-99b9-f7b7bfabbb75.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENTP (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
MPEG-4 LOAS
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f7be8a18-08f5-45fe-b8ea-f21a674dcd7c.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.oldo (copy)
ASCII text
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
ASCII text, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local StateMP (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Stateca (copy)
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
data
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\b810b0cb-dee3-4585-8451-f37519f33b3f.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\ba767cce-ea1c-4341-b49f-4538383813dc.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\cccf106b-4435-4d27-93de-366be46d969b.tmp
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Google\Chrome\User Data\f7a21fa7-c0e5-467d-988c-dca6fa59b40e.tmp
data
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_metadata\verified_contents.json
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_platform_specific\x86_64\pnacl_public_pnacl_json
ASCII text
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377, stripped
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
current ar archive
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
current ar archive
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
current ar archive
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
current ar archive
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce, stripped
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9, stripped
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\manifest.fingerprint
ASCII text, with no line terminators
dropped
C:\Users\user\AppData\Local\Temp\6252_1902345928\manifest.json
ASCII text
dropped
C:\Users\user\AppData\Local\Temp\853aeae9-75a2-4f50-88e4-938cd66f07a2.tmp
very short file (no magic)
dropped
C:\Users\user\AppData\Local\Temp\ce5dab49-d516-4031-910e-7e7d693405cf.tmp
Google Chrome extension, version 3
dropped
C:\Users\user\AppData\Local\Temp\de36e51e-8eda-4c9e-93ee-2d42cffe09d1.tmp
Google Chrome extension, version 3
dropped
C:\Users\user\AppData\Local\Temp\de5202bc-7426-4e88-88b8-2f6658a93bb0.tmp
very short file (no magic)
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\en\messages.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\en_GB\messages.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\es_419\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\fil\messages.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\id\messages.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\nl\messages.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\pt_BR\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\pt_PT\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\zh_CN\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\_metadata\verified_contents.json
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\craw_background.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\craw_window.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\css\craw_window.css
ASCII text
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\html\craw_window.html
HTML document, ASCII text
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\images\flapper.gif
GIF image data, version 89a, 30 x 30
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\images\icon_128.png
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\images\icon_16.png
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\images\topbar_floating_button.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\images\topbar_floating_button_close.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\images\topbar_floating_button_hover.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\images\topbar_floating_button_maximize.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\images\topbar_floating_button_pressed.png
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\CRX_INSTALL\manifest.json
ASCII text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_1749828163\de36e51e-8eda-4c9e-93ee-2d42cffe09d1.tmp
Google Chrome extension, version 3
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\am\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\ar\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\bg\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\bn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\ca\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\cs\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\da\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\de\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\el\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\en\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\es\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\et\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\fa\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\fi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\fil\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\fr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\gu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\hi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\hr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\hu\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\id\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\it\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\iw\messages.json
HTML document, ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\ja\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\kn\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\ko\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\lt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\lv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\ml\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\mr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\ms\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\nb\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\nl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\pl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\pt\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\ro\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\ru\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\sk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\sl\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\sr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\sv\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\sw\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\ta\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\te\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\th\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\tr\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\uk\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\vi\messages.json
UTF-8 Unicode text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\zh\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_locales\zh_TW\messages.json
UTF-8 Unicode text, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\_metadata\verified_contents.json
ASCII text, with very long lines, with no line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\angular.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\background_script.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\cast_sender.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\common.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\feedback.css
ASCII text
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\feedback.html
HTML document, ASCII text
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\feedback_script.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\manifest.json
ASCII text, with very long lines, with CRLF line terminators
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\material_css_min.css
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\mirroring_cast_streaming.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\mirroring_common.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\mirroring_hangouts.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\CRX_INSTALL\mirroring_webrtc.js
ASCII text, with very long lines
dropped
C:\Users\user\AppData\Local\Temp\scoped_dir6252_567515382\ce5dab49-d516-4031-910e-7e7d693405cf.tmp
Google Chrome extension, version 3
dropped
There are 223 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://1drv.ms/u/s!AmyKwUtbvT8mwk0nu1suDQa6LFVI?e=RWJbpc
C:\Program Files\Google\Chrome\Application\chrome.exe
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1504,2176565070212694330,1004260994555063953,131072 --lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1912 /prefetch:8

URLs

Name
IP
Malicious
https://1drv.ms/u/s!AmyKwUtbvT8mwk0nu1suDQa6LFVI?e=RWJbpc
malicious
https://factorybuilderstores.com/
malicious
https://homedominion.net/document/images/adobe.jpg
92.204.211.44
 malicious
https://homedominion.net/document/images/office3651.png
92.204.211.44
 malicious
https://homedominion.net/document/css/hover.css
92.204.211.44
 malicious
https://homedominion.net/document/images/8.jpg
92.204.211.44
 malicious
https://factorybuilderstores.com/wp-json/tribe/events/v1/
unknown
https://apis.google.com/js/client.js
unknown
https://factorybuilderstores.com/wp-json/tribe/events/v1/X-TEC-API-ORIGIN:
unknown
https://code.jquery.com/jquery-3.2.1.slim.min.js
unknown
https://factorybuilderstores.comX-TEC-API-VERSION:
unknown
https://app.chatnox.com/site/chat.jsh
unknown
https://spoprod-a.akamaihd.net/files/fabric/assets/icons/fabricmdl2icons.woff7
unknown
https://p.sfx.ms/is/invis.gif
unknown
https://static.ctctcdn.com/js/signup-form-widget/current/signup-form-widget.min.js
unknown
https://csp.withgoogle.com/csp/report-to/apps-themes
unknown
https://factorybuilderstores.com/wp-content/uploads/2021/02/p-150x150.png
45.79.23.75
https://factorybuilderstores.com/wp-content/uploads/2021/02/t-150x150.png
45.79.23.75
https://csp.withgoogle.com/csp/recaptcha
unknown
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
unknown
https://factorybuilderstores.com/wp-content/plugins/constant-contact-forms/assets/js/ctct-plugin-rec
unknown
https://preprod-hangouts-googleapis.sandbox.google.com
unknown
https://factorybuilderstores.com/wp-content/plugins/content-views-query-and-display-post-page/public
unknown
https://factorybuilderstores.com/author/rchristiansen/#Person
unknown
https://factorybuilderstores.com/wp-content/plugins/woocommerce-products-filter/js/html_types/mselec
unknown
https://stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-11363909-1&cid=1584375457.1643427649&jid=1066680160&gjid=62925350&_gid=749291979.1643427650&_u=IEBAAEAAAAAAAC~&z=1081745912
108.177.127.156
https://onedrive.live.com/view.aspx?resid=263FBD5B4BC18A6C!8525&authkey=!ACe7Wy4NBrosVUg
https://factorybuilderstores.com/wp-content/uploads/2014/12/Find-Store-Home-btn-e1455304766510.pngY
unknown
https://factorybuilderstores.com/wp-content/uploads/2022/01/homepg-tiles-SUDU-2020-500x550.png.png
45.79.23.75
https://factorybuilderstores.com/wp-includes/js/wp-util.min.jsGIF89a
unknown
https://factorybuilderstores.com/wp-content/uploads/2021/02/ig-150x150.png
45.79.23.75
https://factorybuilderstores.com/wp-content/uploads/2021/02/yt-150x150.png
45.79.23.75
https://factorybuilderstores.com/wp-includes/js/comment-reply.min.js
45.79.23.75
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
104.18.10.207
https://nam12.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.factorybuilderstores.com%2F&data=04%7C01%7Cdgdovin%40factorybuilderstores.com%7C5e1cf01425f04b8ec1bf08d92c255b9a%7C7fa74112bbb6494cbdc8e7e89eeb0950%7C0%7C0%7C637589361247494102%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C1000&sdata=FkBjozh8JQcGVSq0X1Uak4s1aEQwb8HOupy9mce1oY0%3D&reserved=0
104.47.66.28
https://kit.fontawesome.com/585b051251.js
unknown
https://www.google.ae/pagead/attribution/wcm?cc=ZZ&dn=2109531292&cl=jrl4CKPI0_gCEO3P2rMC
unknown
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
unknown
https://www.google.com/tools/feedback
unknown
https://factorybuilderstores.com/wp-content/plugins/event-tickets/common/src/resources/js/underscore-before.js
45.79.23.75
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
unknown
https://factorybuilderstores.com/wp-content/plugins/woocommerce-products-filter/js/tooltip/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-noir.min.css
45.79.23.75
https://spoprod-a.akamaihd.net/files/onedrive-website-release-prod_master_20210924.001//filescss1-11
unknown
https://factorybuilderstores.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.actions.min.js?version=5.4.8
45.79.23.75
https://factorybuilderstores.com/wp-content/uploads/2020/11/favicon.bmp
45.79.23.75
https://factorybuilderstores.com/T
unknown
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
unknown
https://factorybuilderstores.com/wp-json/tribe/tickets/v1/X-ET-API-ORIGIN:
unknown
https://maxcdn.bootstrapcdn.com/
unknown
https://factorybuilderstores.com/wp-content/plugins/woocommerce-products-filter/js/chosen/chosen.jquery.js
45.79.23.75
https://payments.google.com/payments/v4/js/integrator.js
unknown
https://factorybuilderstores.com/wp-content/plugins/woocommerce-products-filter/js/html_types/checkb
unknown
https://www.google.ae/pagead/attribution/wcm?cc=ZZ&dn=8176974104&cl=kkHeCOvA0vgCEO3P2rMC
unknown
https://spoprod-a.akamaihd.net/files/fabric/assets/icons/fabricmdl2icons.woff
unknown
https://ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251
unknown
https://kit.fontawesome.com/
unknown
https://factorybuilderstores.com/wp-content/themes/woopress/js/etheme.js
45.79.23.75
https://onedrive.live.com/redir?resid=263FBD5B4BC18A6C
unknown
https://factorybuilderstores.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js
45.79.23.75
https://factorybuilderstores.com/wp-content/plugins/event-tickets/src/resources/js/ticket-details.mi
unknown
https://www.google.ae/pagead/attribution/wcm?cc=ZZ&dn=5129754782&cl=O56-COa70vgCEO3P2rMC
unknown
https://www.google.com/images/dot2.gif
unknown
https://www.onenote.com/officeaddins/learningtools/?et=W
unknown
https://onedrive.live.com/Handlers/Plt.mvc?bicild=&v=0.0.0GIF89a
unknown
http://tools.ietf.org/html/rfc1950
unknown
https://connect.facebook.net/signals/config/1616091845209003?v=2.9.51&r=stableo
unknown
https://www.facebook.com/tr/
157.240.17.35
https://static.ctctcdn.com/js/signup-form-widget/current/signup-form-widget.min.jsCB
unknown
https://factorybuilderstores.com/wp-content/uploads/2014/12/appliances-category-homepage-thumbnail.jpg
45.79.23.75
https://factorybuilderstores.com/wp-content/themes/woopress/js/head.js
45.79.23.75
https://factorybuilderstores.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js
45.79.23.75
https://github.com/js-cookie/js-cookie
unknown
https://factorybuilderstores.com/wp-content/plugins/photo-gallery/js/jquery.sumoselect.min.js
45.79.23.75
https://factorybuilderstores.com/wp-content/plugins/revslider/public/assets/assets/coloredbg.png
45.79.23.75
https://factorybuilderstores.com/wp-content/uploads/2021/02/li-150x150.pngO
unknown
https://a.nel.cloudflare.com/report/v3?s=S16hXl%2FlQLQ0L55tlvhleRhw1uq%2BrQDBAO3CCB8h9INFunnIvEMpLLe
unknown
https://factorybuilderstores.com/wp-content/themes/woopress/js/etheme.jsmp
unknown
https://homedominion.net/
unknown
https://csp.withgoogle.com/csp/report-to/apps-themesd
unknown
https://factorybuilderstores.com/wp-content/uploads/2015/06/FBS_logo_Appl-Cab.CMYK_.2019BestChoiceta
unknown
https://secure.gravatar.com/avatar/5e236a4cd0d8ea8e0d88f8ce702ed1cb?s=96&d=blank&r=g
unknown
https://www.google.com/images/cleardot.gif
unknown
https://play.google.com
unknown
https://factorybuilderstores.com/
45.79.23.75
https://spoprod-a.akamaihd.net/files/onedrive-website-release-prod_master_20210924.001/wac_s_office-
unknown
https://csp.withgoogle.com/csp/apps-themesCross-Origin-Resource-Policy:
unknown
https://factorybuilderstores.com/wp-includes/js/jquery/jquery-migrate.min.js
45.79.23.75
https://factorybuilderstores.com/wp-content/plugins/woocommerce-products-filter/js/html_types/radio.js
45.79.23.75
https://factorybuilderstores.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.j
unknown
https://app.chatnox.com/site/chat.js
172.217.168.19
https://factorybuilderstores.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js
45.79.23.75
https://factorybuilderstores.com/wp-content/uploads/2014/12/appliances-category-homepage-thumbnail.j
unknown
https://www.google.com/log?format=json&hasfast=true
unknown
https://ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251
unknown
https://factorybuilderstores.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js
45.79.23.75
https://ajax.aspnetcdn.com/ajax/jQuery/jquery-2.1.3.min.js
unknown
https://www.constantcontact.com/legal/privacy-statement
unknown
https://factorybuilderstores.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.8
45.79.23.75
https://accounts.google.com/MergeSession
unknown
https://www.onenote.com/officeaddins/learningtools/?et=
unknown
https://factorybuilderstores.com/wp-content/themes/woopress/images/medium-cross.png
45.79.23.75
There are 90 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
gstaticadssl.l.google.com
216.58.215.227
listgrowth.ctctcdn.com
143.204.215.55
nam12.safelinks.protection.outlook.com
104.47.66.28
scontent.xx.fbcdn.net
157.240.17.15
cdnjs.cloudflare.com
104.16.18.94
i-db3p-cor003.api.p001.1drv.com
40.90.136.179
www.google.com
142.250.203.100
star-mini.c10r.facebook.com
157.240.17.35
accounts.google.com
142.250.203.109
www-google-analytics.l.google.com
142.250.203.110
stats.l.doubleclick.net
108.177.127.156
www-googletagmanager.l.google.com
172.217.168.8
homedominion.net
92.204.211.44
maxcdn.bootstrapcdn.com
104.18.10.207
factorybuilderstores.com
45.79.23.75
d3bi9sbave64gz.cloudfront.net
65.9.61.89
1drv.ms
13.107.42.12
googleads.g.doubleclick.net
142.250.203.98
chatnoxapp.appspot.com
172.217.168.20
i-db3p-cor001.api.p001.1drv.com
40.90.136.182
clients.l.google.com
142.250.203.110
googlehosted.l.googleusercontent.com
172.217.168.33
s.w.org
192.0.77.48
ghs.googlehosted.com
172.217.168.19
www.google.ae
142.250.203.99
ka-f.fontawesome.com
unknown
messaging.office.com
unknown
www.factorybuilderstores.com
unknown
c.live.com
unknown
ajax.aspnetcdn.com
unknown
cdn.rlets.com
unknown
stats.g.doubleclick.net
unknown
clients2.googleusercontent.com
unknown
clients2.google.com
unknown
code.jquery.com
unknown
onedrive.live.com
unknown
static.ctctcdn.com
unknown
p.sfx.ms
unknown
amcdn.msftauth.net
unknown
www.onenote.com
unknown
www.facebook.com
unknown
onenoteonlinesync.onenote.com
unknown
kit.fontawesome.com
unknown
storage.live.com
unknown
connect.facebook.net
unknown
skyapi.onedrive.live.com
unknown
app.chatnox.com
unknown
spoprod-a.akamaihd.net
unknown
There are 38 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
65.9.61.89
d3bi9sbave64gz.cloudfront.net
United States
192.168.2.1
unknown
unknown
45.79.23.75
factorybuilderstores.com
United States
157.240.17.35
star-mini.c10r.facebook.com
United States
92.204.211.44
homedominion.net
Germany
104.16.18.94
cdnjs.cloudflare.com
United States
216.58.215.227
gstaticadssl.l.google.com
United States
108.177.127.156
stats.l.doubleclick.net
United States
13.107.42.12
1drv.ms
United States
239.255.255.250
unknown
Reserved
104.47.66.28
nam12.safelinks.protection.outlook.com
United States
127.0.0.1
unknown
unknown
172.217.168.19
ghs.googlehosted.com
United States
104.18.10.207
maxcdn.bootstrapcdn.com
United States
40.90.136.179
i-db3p-cor003.api.p001.1drv.com
United States
157.240.17.15
scontent.xx.fbcdn.net
United States
172.217.168.8
www-googletagmanager.l.google.com
United States
172.217.168.20
chatnoxapp.appspot.com
United States
143.204.215.55
listgrowth.ctctcdn.com
United States
142.250.203.109
accounts.google.com
United States
142.250.203.100
www.google.com
United States
172.217.168.33
googlehosted.l.googleusercontent.com
United States
40.90.136.182
i-db3p-cor001.api.p001.1drv.com
United States
There are 13 hidden IPs, click here to show them.

Registry

Path
Value
Malicious
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
ahfgeienlihckogmohjhadlkjgocpleb
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gdaefkejpgkiemlaofpalmlakkmbjdnl
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gfdkimpbcpahaombhbimeihdjnejgicl
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
kmendfapggjehodndflmmgagdbamhnfd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mfehgcgbbipciphmccgaenjidiccnmng
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
mhjfbmdgcfjbbpaeojofohoefgiehjai
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
neajdppkdcdipfabeoofebfddakdcjhd
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nkeimhogjdpnpccoofpliimaahmaaome
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
S-1-5-21-3853321935-2125563209-4053062332-1002
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
gfdkimpbcpahaombhbimeihdjnejgicl
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
pkedcjkdefgpdelpbcmbmeomcjbeemfm
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
nmmhkkegccagdldgiimedpiccmgmieda
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
StatusCodes
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
state
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
dr
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.reporting
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
module_blacklist_cache_md5_digest
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
media.storage_id_salt
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_account_id
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.account_id
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_seed
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_homepage
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
default_search_provider_data.template_url_data
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
safebrowsing.incidents_sent
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
pinned_tabs
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
search_provider_overrides
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_default_search
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
prefs.preference_reset_time
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
google.services.last_username
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.startup_urls
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
session.restore_on_startup
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
software_reporter.prompt_version
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.last_triggered_for_startup_urls
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
settings_reset_prompt.prompt_wave
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
homepage_is_newtabpage
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
browser.show_home_button
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
user_experience_metrics.stability.exited_cleanly
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
lastrun
There are 34 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
1EE52629000
unkown
page read and write
2F74BA13000
unkown
page read and write
14E72FA000
stack
page read and write
16F01A29000
unkown
page read and write
1ED1C17F000
unkown
page read and write
18389E8F000
heap
page read and write
CB1257B000
stack
page read and write
518F7F000
stack
page read and write
16F01A5F000
unkown
page read and write
1ED1C1B1000
unkown
page read and write
2F74BA29000
unkown
page read and write
1EE52646000
unkown
page read and write
1EE52700000
unkown
page read and write
2B500629000
unkown
page read and write
1EE52655000
unkown
page read and write
16F01B08000
unkown
page read and write
18389E72000
heap
page read and write
18389E60000
heap
page read and write
1EE52652000
unkown
page read and write
1ED1C602000
unkown
page read and write
1ED1C1A0000
unkown
page read and write
16F01B13000
unkown
page read and write
2F74BB02000
unkown
page read and write
CB1227C000
stack
page read and write
1EE52580000
unkown
page read and write
1ED1C170000
unkown
page read and write
2F74BB13000
unkown
page read and write
16F01A5B000
unkown
page read and write
1EE52658000
unkown
page read and write
18389EA0000
heap
page read and write
2F74B810000
heap
page read and write
2B1267B000
stack
page read and write
2B50064E000
unkown
page read and write
1F40DDE0000
remote allocation
page read and write
518E79000
stack
page read and write
1ED1C17C000
unkown
page read and write
2F74B970000
unkown
page read and write
FEF0AFD000
stack
page read and write
2F74BA46000
unkown
page read and write
FEF09FE000
stack
page read and write
1ED1C198000
unkown
page read and write
1EE52669000
unkown
page read and write
14E6CFF000
stack
page read and write
1ED1C663000
unkown
page read and write
18389E9F000
heap
page read and write
1ED1C186000
unkown
page read and write
16F01A5A000
unkown
page read and write
1EE524E0000
heap
page read and write
2B500681000
unkown
page read and write
2F74BA8E000
unkown
page read and write
CB127FE000
stack
page read and write
1EE52613000
unkown
page read and write
18389E00000
heap
page read and write
1EE52600000
unkown
page read and write
1ED1C1A0000
unkown
page read and write
2B1213C000
stack
page read and write
1ED1C1A0000
unkown
page read and write
16F01A00000
unkown
page read and write
1ED1C1AF000
unkown
page read and write
CB128FE000
stack
page read and write
1ED1C1D0000
unkown
page read and write
2B500713000
unkown
page read and write
18389E76000
heap
page read and write
14E71FF000
stack
page read and write
14E6DFB000
stack
page read and write
1ED1C198000
unkown
page read and write
1ED1C173000
unkown
page read and write
1ED1C602000
unkown
page read and write
FEF033F000
stack
page read and write
518B8E000
stack
page read and write
1ED1C602000
unkown
page read and write
518EFF000
stack
page read and write
1EE52650000
unkown
page read and write
16F01A4E000
unkown
page read and write
16F01B00000
unkown
page read and write
1ED1C192000
unkown
page read and write
18389E8D000
heap
page read and write
1EE52670000
unkown
page read and write
1EE5267F000
unkown
page read and write
2F74BA90000
unkown
page read and write
18389E77000
heap
page read and write
16F01A60000
unkown
page read and write
2B121BE000
stack
page read and write
2B500613000
unkown
page read and write
2F74B870000
heap
page read and write
CB1247C000
stack
page read and write
1EE52690000
unkown
page read and write
518B0F000
stack
page read and write
1EE52688000
unkown
page read and write
16F018A0000
heap
page read and write
18389E8F000
heap
page read and write
2B12777000
stack
page read and write
1EE5263C000
unkown
page read and write
2B1287F000
stack
page read and write
2B500670000
unkown
page read and write
2B500654000
unkown
page read and write
1EE52E02000
unkown
page read and write
CB126F7000
stack
page read and write
1ED1B8A1000
unkown
page read and write
1EE52708000
unkown
page read and write
1ED1C702000
unkown
page read and write
2B500600000
unkown
page read and write
14E6FF7000
stack
page read and write
2B1297A000
stack
page read and write
2F74BA4D000
unkown
page read and write
16F01A88000
unkown
page read and write
518FFA000
stack
page read and write
1EE52713000
unkown
page read and write
1EE5264F000
unkown
page read and write
CB125FE000
stack
page read and write
1EE52647000
unkown
page read and write
1ED1B8A8000
unkown
page read and write
1ED1C193000
unkown
page read and write
2F74BB08000
unkown
page read and write
1ED1C1BD000
unkown
page read and write
1ED1C170000
unkown
page read and write
2F74BA47000
unkown
page read and write
2B1247E000
stack
page read and write
2F74B800000
heap
page read and write
18389DE0000
heap
page read and write
18389E8F000
heap
page read and write
16F018B0000
heap
page read and write
18389E87000
heap
page read and write
2B500400000
heap
page read and write
16F01A5C000
unkown
page read and write
2F74BA88000
unkown
page read and write
2F74C202000
unkown
page read and write
2F74BA52000
unkown
page read and write
1ED1BF40000
remote allocation
page read and write
16F01A64000
unkown
page read and write
1ED1C602000
unkown
page read and write
2F74BA4F000
unkown
page read and write
2B50063C000
unkown
page read and write
16F01A2C000
unkown
page read and write
1ED1C17C000
unkown
page read and write
2F74BA3C000
unkown
page read and write
1ED1C19B000
unkown
page read and write
1ED1C663000
unkown
page read and write
1EE52657000
unkown
page read and write
FEF02BC000
stack
page read and write
1ED1C198000
unkown
page read and write
18389E6B000
heap
page read and write
1ED1C178000
unkown
page read and write
18389E05000
heap
page read and write
1ED1C190000
unkown
page read and write
14E6EFB000
stack
page read and write
1ED1C602000
unkown
page read and write
1ED1C19C000
unkown
page read and write
1EE52550000
heap
page read and write
2F74BA70000
unkown
page read and write
1EE5264C000
unkown
page read and write
14E69FB000
stack
page read and write
2F74BA4B000
unkown
page read and write
14E70FE000
stack
page read and write
2F74BA4C000
unkown
page read and write
CB122FD000
stack
page read and write
518A8A000
stack
page read and write
1ED1C1BE000
unkown
page read and write
1ED1BF40000
remote allocation
page read and write
1EE5264D000
unkown
page read and write
18389E10000
heap
page read and write
1ED1C198000
unkown
page read and write
1ED1C1A0000
unkown
page read and write
2F74BB00000
unkown
page read and write
16F01A7D000
unkown
page read and write
1ED1C1A0000
unkown
page read and write
FEF03BF000
stack
page read and write
1EE5265A000
unkown
page read and write
1ED1C1D9000
unkown
page read and write
2B500E02000
unkown
page read and write
16F01A5D000
unkown
page read and write
16F01A62000
unkown
page read and write
1EE52702000
unkown
page read and write
1ED1C170000
unkown
page read and write
2B1257C000
stack
page read and write
2B500410000
heap
page read and write
2B500677000
unkown
page read and write
1ED1C19E000
unkown
page read and write
1EE5264B000
unkown
page read and write
2B500700000
unkown
page read and write
2B500570000
unkown
page read and write
1EE5268E000
unkown
page read and write
2B500708000
unkown
page read and write
16F01A3C000
unkown
page read and write
1ED1C1D1000
unkown
page read and write
1F40DDE0000
remote allocation
page read and write
2B500702000
unkown
page read and write
1ED1C1D1000
unkown
page read and write
1F40DDE0000
remote allocation
page read and write
FEF08F7000
stack
page read and write
1ED1C191000
unkown
page read and write
14E6C7F000
stack
page read and write
18389E8D000
heap
page read and write
2B500470000
heap
page read and write
1ED1C198000
unkown
page read and write
1ED1C174000
unkown
page read and write
1ED1C19C000
unkown
page read and write
FEF07FB000
stack
page read and write
1ED1C190000
unkown
page read and write
16F02202000
unkown
page read and write
16F02070000
unkown
page read and write
2F74BA50000
unkown
page read and write
CB1237E000
stack
page read and write
16F01A73000
unkown
page read and write
18389E8D000
heap
page read and write
1ED1C1BE000
unkown
page read and write
1EE524F0000
heap
page read and write
16F01A13000
unkown
page read and write
1EE52669000
unkown
page read and write
1ED1C170000
unkown
page read and write
2F74BB26000
unkown
page read and write
1ED1C602000
unkown
page read and write
2F74BA00000
unkown
page read and write
2F74BA7D000
unkown
page read and write
16F01910000
heap
page read and write
1ED1C1CC000
unkown
page read and write
18389E86000
heap
page read and write
1ED1BF40000
remote allocation
page read and write
18389D80000
heap
page read and write
16F01B02000
unkown
page read and write
There are 210 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://homedominion.net/document/
 malicious
https://onedrive.live.com/view.aspx?resid=263FBD5B4BC18A6C!8525&authkey=!ACe7Wy4NBrosVUg
https://onenote.officeapps.live.com/o/onenoteframe.aspx?edit=0&ui=en-US&rs=en-US&hid=7LVw%2ByZg%2F0egO7vdaVb60g.0&wopisrc=https%3A%2F%2Fwopi.onedrive.com%2Fwopi%2Ffolders%2F263FBD5B4BC18A6C!8525&wdo=2&sc=host%3D%26qt%3DDefault&wdp=7&uih=OneDrive&wdorigin=Unknown&wdhostclicktime=1643427591683&jsapi=1&jsapiver=v1&newsession=1&corrid=c213fd86-bcf8-49ed-aee2-b13c25ae7aa3&usid=c213fd86-bcf8-49ed-aee2-b13c25ae7aa3&sftc=1&readonly=1&wdredirectionreason=Force_SingleStepBoot
https://onedrive.live.com/redir?resid=263FBD5B4BC18A6C%218525&authkey=%21ACe7Wy4NBrosVUg&page=View&wd=target%28Quick%20Notes.one%7C4284aa54-1ad4-4328-9eac-627cb28f24c4%2FBIZ%20PROPOSAL%202022%7C8c8b1b87-2919-43ff-9b09-d0a9915cb015%2F%29
https://factorybuilderstores.com/